Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1930
Views
0
Helpful
1
Replies

Can a rule be written to look for hyperlinks and if the display is different from the destination insert a warning?

keithsauer507
Level 5
Level 5

‎06-26-2020 11:56 AM - edited ‎06-26-2020 11:57 AM

In our paid penetration test our vendor recommended the following:

 

Create a filter that will inspect the message body of an email and compare a link's text to the URL in the link's HTML tag. If there is a difference, prepend a message to the message body warning the user to be cautious and include the real URL.

Additionally a filter can be created if an HTML formatted email does not have the RFC standard, alternate plain-text version of the message body.

 

 

Is this possible today with Cisco IronPort?  We have a call with proofpoint next Wednesday to intro their email security solution so if Cisco wants us to stay next year they better step up to the plate here.

Labels:
0 Helpful
1 Reply 1

Libin Varghese
Cisco Employee
Cisco Employee

‎11-02-2020 11:56 PM

We currently do not compare a URL with its text, however we utilize both for URL reputation and category lookups.

If there are specific scenarios or feedbacks you can open a TAC case or discuss with your Accounts team on upcoming roadmaps.

 

Regards,

Libin

0 Helpful
Customers Also Viewed These Support Documents